• Solid experience in software development and software engineering practices. • Advanced experience building, maintaining and optimizing CI/CD pipelines using YAML. • Hands-on experience with Git and strategies for versioning, branching and release management. • Experience with containerization using Docker and container orchestration with Kubernetes. • Experience implementing and automating unit, integration, regression tests and quality validations in CI/CD pipelines. • Proven experience with Azure DevOps and GitHub, including Azure Pipelines, GitHub Actions and repository management. • Knowledge of DevSecOps practices, including vulnerability analysis, secret management and security controls in pipelines.

• Ensuring the reliability, availability, and performance of production infrastructure and platform services • Operating and scaling Kubernetes platforms, including governance and support for multi-tenant workloads • Managing GitOps-based deployment workflows using ArgoCD and Helm • Supporting infrastructure provisioning and change management through Terraform/Terragrunt • Building and supporting CI/CD automation and deployment workflows using GitHub Actions • Participating in incident response, root cause analysis, and post-incident improvement initiatives • Reducing operational toil through scripting, tooling, and process automation • Advancing observability practices across logs, metrics, traces, dashboards, and alerting • Supporting secure secrets integration, IAM-aware operations, and platform guardrails • Partnering closely with application, security, and platform teams to improve reliability and delivery outcomes

• Lead database architecture and design initiatives, delivering scalable, high-performance, reliable solutions aligned with business needs and long-term strategic goals. • Leverage AI/ML technologies to improve database operations through performance optimization, capacity planning, anomaly detection, predictive maintenance, and automation. • Develop, maintain, and enhance database monitoring, alerting, backup, and disaster recovery systems to ensure system health, data integrity, and high availability. • Troubleshoot and resolve complex database issues, providing technical leadership, guidance, and operational support, including participation in on-call rotations. • Ensure compliance with regulatory requirements and internal policies by conducting regular database audits, assessments, and governance reviews. • Collaborate effectively across cross-functional teams, mentor junior database engineers, stay current on emerging database technologies and best practices, and remain flexible to support global teams across multiple time zones.

Role Description We run a serverless-first stack on AWS, and we operate as a true DevOps org: engineers build and own their own infrastructure, but we're looking to add a DevOps/Platform engineer to the team to help us grow. This is a sole-platform-engineer role today, with real autonomy and real scope. You'll work across infrastructure, developer experience, and security/compliance. You'll build tooling so that we don't have to keep reinventing the wheel; you'll standardize and update our infrastructure; and you'll own and update our CI/CD pipeline so we can deploy code safely and quickly. What you'll own: - Application infrastructure: - Build and maintain reusable infrastructure components, so application engineers can safely stand up new components without shooting themselves in the foot. - Take the lead on improving observability (monitoring, alerting, etc), so it's easy for application engineers to know that their code is running, and to learn about issues before users have to report them. - Solve concrete infra needs as they arise — everything from setting up SFTP sites for customer file-sharing to creating a pathway so that outbound API requests are sent from a fixed IP. - Standardize and harden our AWS footprint, with security, budget, and HIPAA considerations front of mind. - Developer experience: - Make our CI/CD pipelines faster and more effective. - Solve developer pain points like shared dev environments and locally running code. - Help us move to the next stage of maturity with improved monitoring and alerting tools. - Security Engineering: - You'll own security tooling integration across our SDLC — embedding automated scanning and policy enforcement so that security is a feature of our delivery pipeline, not a final gate. - Run and tune SAST, DAST, SCA, and container scanning tools so the signal-to-noise ratio is actually usable. - Implement guardrails and controls using AWS-native services such as AWS Security Hub, GuardDuty, and Config; conduct regular vulnerability scans, configuration reviews, and remediation tracking. - Threat model new services and architecture changes before they ship, ideally during design review rather than after launch. - Other duties: - Act as the technical interface to our outsourced IT department and recognize when our users need additional support. Qualifications - Strong AWS experience, especially serverless (currently AppSync and Lambdas, but we're considering a move to API Gateway). - Solid infrastructure-as-code expertise (Terraform, CloudFormation, CDK, or similar). We're currently transitioning from the Serverless Framework to CDK (TypeScript); CDK experience is a plus, but strong IaC fundamentals matter more. - A platform mindset: you measure your success by how productive you make other engineers, not by how many tickets you close. - Comfortable in code: not afraid to edit application code to achieve infrastructure or tooling goals. - Solid grasp of cloud security fundamentals (IAM, network boundaries, secrets, least privilege). - CI/CD pipeline experience and a bias toward automation. - Comfort operating with autonomy in a small team where you'll likely wear many hats. Nice to have - Experience supporting SOC 2, HIPAA, or similar audits/compliance regimes. - SSO / identity tooling (Okta, AWS IAM Identity Center, etc.).